fix(deps): update dependency symfony/flex to v2.10.0

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
symfony/flex	2.4.7 -> 2.10.0

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

symfony/flex (symfony/flex)

v2.10.0

Compare Source

What's Changed

• Bump symfony/dotenv to v5.4 minimum by @​nicolas-grekas in #​1071
• Fix dump-env command when .env files reference other env vars by @​nicolas-grekas in #​1070

Full Changelog: symfony/flex@v2.9.0...v2.10.0

v2.9.0

Compare Source

What's Changed

• Some love for tests - fix Symfony 8 support by @​nicolas-grekas in #​1065
• Fix ignoring unstable releases with --prefer-lowest and --prefer-stable by @​nicolas-grekas in #​1066
• Bump deps, PHP >= 8.1 by @​nicolas-grekas in #​1067
• Leverage COMPOSER_PREFER_DEV_OVER_PRERELEASE when possible by @​nicolas-grekas in #​1068

Full Changelog: symfony/flex@v2.8.2...v2.9.0

v2.8.2

Compare Source

v2.8.1

Compare Source

v2.8.0

Compare Source

v2.7.1

Compare Source

What's Changed

• CS modernize_strpos by @​rosier in #​1053
• Don't remove still-referenced files when unconfiguring recipes by @​nicolas-grekas in #​1054

Full Changelog: symfony/flex@v2.7.0...v2.7.1

v2.7.0

Compare Source

What's Changed

• Fix unpack logic by @​nicolas-grekas in #​1050
• Allow to define entrypoint in importmap.php by @​Jibbarth in #​1026

New Contributors

• @​Jibbarth made their first contribution in #​1026

Full Changelog: symfony/flex@v2.6.0...v2.7.0

v2.6.0

Compare Source

What's Changed

• Handle phpunit.xml.dist as an alias of phpunit.dist.xml by @​nicolas-grekas in #​1045
• fix jsonPath in ComposerScriptsConfigurator::update by @​klkvsk in #​1011
• Add configurator for "composer-commands" entries in recipes by @​morawskim in #​930
• Resolve directories for copy from recipe in update case by @​shyim in #​950
• Don't run git hooks when running recipes:update by @​nicolas-grekas in #​1046
• Ignore warnings related to opcache.restrict_api by @​nicolas-grekas in #​1047
• Add --yes flag to recipes:install command to overwrite all files without asking by @​shyim in #​963
• Fix needless call to flex API on composer i by @​nicolas-grekas in #​1048
• Don't copy constraint from framework-bundle when installing a new symfony package by @​nicolas-grekas in #​1049

New Contributors

• @​klkvsk made their first contribution in #​1011
• @​morawskim made their first contribution in #​930

Full Changelog: symfony/flex@v2.5.1...v2.6.0

v2.5.1

Compare Source

What's Changed

• Always include locked dev packages by @​wouterj in #​1044

Full Changelog: symfony/flex@v2.5.0...v2.5.1

v2.5.0

Compare Source

What's Changed

• Do not synchronize package.json if symfony/flex is not installed by @​leofeyer in #​1039
• Add ability to skip package.json synchronization by @​wuchen90 in #​1032

New Contributors

• @​leofeyer made their first contribution in #​1039
• @​wuchen90 made their first contribution in #​1032

Full Changelog: symfony/flex@v2.4.7...v2.5.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

Branch automerge failure

This PR was configured for branch automerge. However, this is not possible, so it has been raised as a PR instead.

---

• Branch has one or more failed status checks

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: api/composer.lock

Command failed: composer update symfony/flex:2.10.0 --with-dependencies --ignore-platform-req='ext-*' --ignore-platform-req='lib-*' --no-ansi --no-interaction --no-scripts --no-autoloader --no-plugins --minimal-changes
Loading composer repositories with package information
Updating dependencies
Your requirements could not be resolved to an installable set of packages.

  Problem 1
    - Root composer.json requires api-platform/core 3.3.6 (exact version match: 3.3.6 or 3.3.6.0), found api-platform/core[v3.3.6] but these were not loaded, because they are affected by security advisories. To ignore the advisories, add ("PKSA-gs8r-6kz6-pp56", "PKSA-gnn4-pxdg-q76m") to the audit "ignore" config. To turn the feature off entirely, you can set "block-insecure" to false in your "audit" config.
  Problem 2
    - Root composer.json requires symfony/http-client 7.1.7 (exact version match: 7.1.7 or 7.1.7.0), found symfony/http-client[v7.1.7] but these were not loaded, because they are affected by security advisories. To ignore the advisories, add ("PKSA-4k7v-pfvw-nqvp") to the audit "ignore" config. To turn the feature off entirely, you can set "block-insecure" to false in your "audit" config.
  Problem 3
    - friendsofsymfony/http-cache-bundle is locked to version 3.1.1 and an update of this package was not requested.
    - friendsofsymfony/http-cache-bundle 3.1.1 requires symfony/http-foundation ^6.4 || ^7.0 -> found symfony/http-foundation[v6.4.0, ..., v6.4.29, v7.0.0, ..., v7.3.7] but these were not loaded, because they are affected by security advisories. To ignore the advisories, add ("PKSA-365x-2zjk-pt47") to the audit "ignore" config. To turn the feature off entirely, you can set "block-insecure" to false in your "audit" config.
  Problem 4
    - knpuniversity/oauth2-client-bundle is locked to version v2.18.3 and an update of this package was not requested.
    - knpuniversity/oauth2-client-bundle v2.18.3 requires symfony/http-foundation ^5.4|^6.0|^7.0 -> found symfony/http-foundation[v5.4.0, ..., v5.4.50, v6.0.0, ..., v6.4.29, v7.0.0, ..., v7.3.7] but these were not loaded, because they are affected by security advisories. To ignore the advisories, add ("PKSA-365x-2zjk-pt47") to the audit "ignore" config. To turn the feature off entirely, you can set "block-insecure" to false in your "audit" config.
  Problem 5
    - lexik/jwt-authentication-bundle is locked to version v3.1.1 and an update of this package was not requested.
    - lexik/jwt-authentication-bundle v3.1.1 requires symfony/http-foundation ^6.4|^7.0 -> found symfony/http-foundation[v6.4.0, ..., v6.4.29, v7.0.0, ..., v7.3.7] but these were not loaded, because they are affected by security advisories. To ignore the advisories, add ("PKSA-365x-2zjk-pt47") to the audit "ignore" config. To turn the feature off entirely, you can set "block-insecure" to false in your "audit" config.
  Problem 6
    - sentry/sentry-symfony is locked to version 4.14.0 and an update of this package was not requested.
    - sentry/sentry-symfony 4.14.0 requires symfony/security-http ^4.4.20||^5.0.11||^6.0||^7.0 -> found symfony/security-http[v4.4.20, ..., v4.4.50, v5.0.11, ..., v5.4.47, v6.0.0, ..., v6.4.26, v7.0.0, ..., v7.3.5] but these were not loaded, because they are affected by security advisories. To ignore the advisories, add ("PKSA-rqvm-b18n-vg69") to the audit "ignore" config. To turn the feature off entirely, you can set "block-insecure" to false in your "audit" config.
  Problem 7
    - symfony/framework-bundle is locked to version v7.1.6 and an update of this package was not requested.
    - symfony/framework-bundle v7.1.6 requires symfony/http-foundation ^6.4|^7.0 -> found symfony/http-foundation[v6.4.0, ..., v6.4.29, v7.0.0, ..., v7.3.7] but these were not loaded, because they are affected by security advisories. To ignore the advisories, add ("PKSA-365x-2zjk-pt47") to the audit "ignore" config. To turn the feature off entirely, you can set "block-insecure" to false in your "audit" config.
  Problem 8
    - symfony/security-bundle is locked to version v7.1.6 and an update of this package was not requested.
    - symfony/security-bundle v7.1.6 requires symfony/http-foundation ^6.4|^7.0 -> found symfony/http-foundation[v6.4.0, ..., v6.4.29, v7.0.0, ..., v7.3.7] but these were not loaded, because they are affected by security advisories. To ignore the advisories, add ("PKSA-365x-2zjk-pt47") to the audit "ignore" config. To turn the feature off entirely, you can set "block-insecure" to false in your "audit" config.
  Problem 9
    - symfony/twig-bundle is locked to version v7.1.6 and an update of this package was not requested.
    - symfony/twig-bundle v7.1.6 requires symfony/http-foundation ^6.4|^7.0 -> found symfony/http-foundation[v6.4.0, ..., v6.4.29, v7.0.0, ..., v7.3.7] but these were not loaded, because they are affected by security advisories. To ignore the advisories, add ("PKSA-365x-2zjk-pt47") to the audit "ignore" config. To turn the feature off entirely, you can set "block-insecure" to false in your "audit" config.
  Problem 10
    - symfony/web-profiler-bundle is locked to version v7.1.7 and an update of this package was not requested.
    - symfony/framework-bundle v7.1.6 requires symfony/http-foundation ^6.4|^7.0 -> found symfony/http-foundation[v6.4.0, ..., v6.4.29, v7.0.0, ..., v7.3.7] but these were not loaded, because they are affected by security advisories. To ignore the advisories, add ("PKSA-365x-2zjk-pt47") to the audit "ignore" config. To turn the feature off entirely, you can set "block-insecure" to false in your "audit" config.
    - symfony/web-profiler-bundle v7.1.7 requires symfony/framework-bundle ^6.4|^7.0 -> satisfiable by symfony/framework-bundle[v7.1.6].